Build safe mobile apps by selecting an authentication source that matches your
security requirements. For example, you can use the default account authentication to
effectively build secure apps that users can access with Pega Platform
credentials.
Before you begin: Prepare the framework for using an authentication service
with your mobile app:
- Create a mobile channel for your app. For more information, see Setting up mobile apps.
- Ensure that your Pega Platform instance uses HTTPS and a
trusted SSL certificate.
By default, mobile apps use the OAuth 2.0 authorization
code grant flow against the Pega Platform authentication service. The
configuration of this framework is automatic when you build your app. Alternatively, you
can configure Pega Mobile Client to use the OpenID Connect authorization code flow
directly against an external identity provider. For more information, see Configuring direct authentication against an external OIDC server for Pega Infinity Mobile Client.
-
Open your mobile channel:
-
In the navigation pane of
App Studio, click Channels.
-
In the Current channel interfaces section, click
the tile that represents a mobile channel for your app.
-
On the mobile channel page, on the Configuration tab,
click the Security category.
-
In the Authentication and security section, select how you
want to authenticate users in your mobile app:
- To allow users to access the app without authentication, select
Login not required.
- To ensure that users sign in to the app with the default authentication
service, which uses credentials from the Pega Platform
database, select Pega Platform
account.
- To allow users to select an authentication service from a screen that
displays all enabled services, select Authentication service
selected by the end-user.
- To ensure that users sign in to the app with only one of the enabled
authentication services, select Specific authentication
service, and then select the service that you want to
use.
Note: Pega Mobile Client supports the following types of authentication
services:
- OpenID Connect
- Security Assertion Markup Language
- Basic credentials
For more information about creating custom authentication
services, see
Creating an authentication service.
-
Click Save.